Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/9f0db517-5b08-424e-b352-5292bc6636db/c882212adc35de25283a5072f0336eb865e8c63e.roa
File: c882212adc35de25283a5072f0336eb865e8c63e.roa (raw, json)
Hash identifier: 2N3gxjrwztBDtUk3IaOo9TKhuurlhwVKghXOJPYp6Xs=
Subject key identifier: 37:2D:D0:5F:97:A3:17:C4:F3:A3:56:1A:35:6D:E2:52:1E:61:98:8C
Certificate issuer: /CN=ecc9a7cf8cd28da7666e8648a4847d34d878fdcd
Certificate serial: 23CE8A
Authority key identifier: 58:69:D0:57:05:08:32:46:08:EE:2C:6F:83:08:52:C3:1B:4A:08:ED
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ecc9a7cf8cd28da7666e8648a4847d34d878fdcd.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/9f0db517-5b08-424e-b352-5292bc6636db/c882212adc35de25283a5072f0336eb865e8c63e.roa
Signing time: Thu 31 Aug 2023 12:02:48 +0000
ROA not before: Wed 30 Aug 2023 12:02:48 +0000
ROA not after: Sun 31 Aug 2025 12:02:48 +0000
asID: 27851
IP address blocks: 200.81.152.0/21 maxlen: 24
170.231.36.0/22 maxlen: 24
200.110.184.0/21 maxlen: 24
2803:3680::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2346634 (0x23ce8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ecc9a7cf8cd28da7666e8648a4847d34d878fdcd
Validity
Not Before: Aug 30 12:02:48 2023 GMT
Not After : Aug 31 12:02:48 2025 GMT
Subject: CN=c882212adc35de25283a5072f0336eb865e8c63e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:b9:4f:d4:cb:22:28:b9:56:01:9b:a1:71:30:
49:ac:07:e3:b5:96:2a:4c:5e:ac:41:95:fc:45:b0:
e5:fc:5b:3b:45:71:9e:26:92:fb:9e:f5:be:01:55:
11:2a:13:18:c8:02:fe:02:d6:4a:7b:53:e0:e9:12:
31:11:d1:51:10:11:1d:d6:c4:32:be:a0:68:b7:47:
9a:cf:84:80:ce:96:76:1b:38:61:1c:12:a4:84:b9:
2c:cb:88:53:e1:12:17:fa:8f:7f:7a:65:3f:15:68:
35:9c:00:28:45:09:1e:32:4b:c1:60:64:80:d5:8f:
e6:00:56:81:8f:17:e3:f8:e3:ed:a1:31:cc:72:88:
4c:65:07:5a:8d:d1:14:f7:68:3f:6c:d3:47:4b:ca:
53:f2:e4:b2:e5:ad:81:f5:d8:ea:58:d8:4d:80:e1:
f7:40:15:66:17:7e:90:1f:32:a9:c4:d1:72:21:6e:
a0:40:84:ac:e0:7f:04:49:4d:d3:86:85:9e:90:97:
c9:fb:d6:ee:3f:88:b1:9f:75:d4:2e:2d:52:50:6e:
3f:56:94:0b:d8:bb:2e:f4:17:d2:b5:f8:a8:d7:51:
92:88:64:3c:50:83:30:e0:18:00:45:fc:c2:86:0d:
80:9c:0f:a2:7e:09:ae:f1:5b:f1:8e:cf:5a:c1:4c:
2e:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:2D:D0:5F:97:A3:17:C4:F3:A3:56:1A:35:6D:E2:52:1E:61:98:8C
X509v3 Authority Key Identifier:
keyid:58:69:D0:57:05:08:32:46:08:EE:2C:6F:83:08:52:C3:1B:4A:08:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ecc9a7cf8cd28da7666e8648a4847d34d878fdcd.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/9f0db517-5b08-424e-b352-5292bc6636db/c882212adc35de25283a5072f0336eb865e8c63e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/9f0db517-5b08-424e-b352-5292bc6636db/ecc9a7cf8cd28da7666e8648a4847d34d878fdcd.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.231.36.0/22
200.81.152.0/21
200.110.184.0/21
IPv6:
2803:3680::/32
Signature Algorithm: sha256WithRSAEncryption
3c:c1:91:81:68:a6:4d:5d:6e:da:ea:c0:1a:97:44:c9:02:09:
23:6a:56:73:2c:63:e8:64:c8:f1:73:fe:ce:de:28:85:bf:a0:
73:0a:bc:f9:b0:01:e8:dc:cd:26:75:c4:77:df:16:bc:c5:a2:
e3:19:f5:3c:fd:35:e6:26:ff:bc:4f:aa:fb:f7:a4:48:0d:dd:
07:d5:58:b8:18:f2:93:d2:90:9a:c7:33:c1:89:cb:71:79:e5:
f4:c9:b4:3a:fb:18:40:11:38:c5:ea:37:e0:35:fd:9e:76:8c:
c6:65:56:b8:b1:1e:46:ab:0f:6a:b9:64:31:30:70:b5:75:13:
a1:12:4e:93:7e:ae:e2:ef:74:4d:d3:25:e2:9c:90:d5:63:47:
f0:8f:5e:f3:80:b3:1f:e6:f0:40:cd:61:94:2a:99:0f:9c:a3:
2e:a5:cf:29:39:ca:91:06:23:6b:0c:75:4a:6c:ea:6c:c0:fb:
77:eb:de:83:4b:4a:4c:7c:a8:71:68:c3:7f:7d:57:31:95:f1:
8e:af:2b:15:eb:45:d1:26:f2:0d:f9:70:b3:58:21:91:9c:0c:
96:89:24:88:64:c4:ab:75:a4:34:19:ad:c9:20:d6:15:b3:b0:
51:62:86:4d:8f:a1:13:ac:a5:d2:0c:1d:96:f7:3e:16:62:4d:
9e:3e:b1:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 15 17:25:42 2024 by rpki-client on console-ams.rpki-client.org